21 of 21 Information Security Specialist Jobs

OVERVIEW The Information System Security Engineer II and III is responsible for supporting all aspects of a Program Information Assurance (IA) processes tailored to include minimum qualification standards, fundamental awareness and familiarity to demonstrated competency with specific experience in Cyber Security, Engineering, Test & Evaluation, (T&E) and/or Security Control Assessor (SCA) under a … Certification & Accreditation (C&A) and/or Assessment & Authorization (A&A) process. Must have active Secret clearance and be a US Citizen. The Information System Security Engineer II and III: Support all aspects of Program Information Assurance (IA) activities across the Certification & Accreditation (C&A) and/or Assessment & Authorization (A&A) lifecycle. Apply knowledge and experience … in cybersecurity, engineering, Test & Evaluation (T&E), and/or Security Control Assessment (SCA) roles. Demonstrate working knowledge of the Risk Management Framework (RMF) and/or prior experience with Defense Information Assurance Certification and Accreditation Process (DIACAP). Interpret and apply relevant security policies and guidance documents to support the development and maintenance of IA artifacts More ❯

with one heart, one mind, and one purpose, we can accomplish our mission and be an organization anyone would be proud to be a part of. POSITION SUMMARY The Information Security Specialist is vital in safeguarding the confidentiality, integrity, and availability of systems and data within the Distributed Common Ground System (DCGS) and the STATEFARM programs. This … cybersecurity postures, implementing RMF controls, responding to vulnerabilities, and supporting continuous monitoring initiatives. Working closely with the Zero Trust Architect, DevSecOps engineers, system administrators, and government cybersecurity personnel, the specialist will manage system security controls, support developing and reviewing System Security Plans (SSPs), and assist with Security Analysis Reports. The specialist monitors network and user … while addressing emerging threats and maintaining system resiliency. ESSENTIAL JOB FUNCTIONS Evaluate, implement, and maintain cybersecurity frameworks following the DoD Risk Management Framework (RMF). Develop and update System Security Plans (SSPs), Security Analysis Reports, and associated RMF documentation for DCGS and STATEFARM systems. Design and enforce access control policies, user authentication procedures, and network monitoring protocols. Conduct More ❯

Information Security & Risk Specialist (ISO 27001:2022) - Energy Location: Brussels Hybrid: 2 days a week My client is looking for an Information Security Specialist to join the team in Brussels. The successful candidate will have the opportunity to work in a hybrid model, allowing for a blend of remote and in-office work to … support a good work-life balance. You will work within the Service Delivery team. You will be managing all security related activities for the software development and service coordination in scope of the business. This role will expand in the future into further business areas with a long-term security impact beyond. Responsibilities and tasks Maintain and continuously … improve the specific security policies. Ensure security integration into the Software Development Lifecycle (SSDLC) by collaborating with product owners to implement security best practices. Lead and follow up on non-functional security testing (code scanning, penetration testing, threat modelling) and the yearly security auditing campaign, ensuring follow-up as part of the risk management process. More ❯

improve the well-being of all by taking life science further and combine our attention to detail with the extraordinary, because it all matters. The opportunity Reporting to the Information Security Officer you will contribute to the efficiency, capability and profitability of the business by gathering, analysing and recommending changes to processes/systems within BUs, across multiple … Internal Audit team on the development, implementation and operation of ITGCs Supporting the implementation of ISO27001 controls and perform regular control audits to monitor compliance Developing and managing a security risk framework, aligning with the enterprise risk management approach Coordinating the performance of regular business impact assessments (BIAs) and the recording of results and updates Contributing to the design … and implementation of information security process and control improvements Mentoring other members of the Information security team and promote risk management best practices across IT Supporting the development and delivery of compliance training and awareness, fostering a culture of risk awareness and accountability across the organisation Providing advice to stakeholders on IT risk and compliance topics More ❯

improve the well-being of all by taking life science further and combine our attention to detail with the extraordinary, because it all matters. The opportunity Reporting to the Information Security Officer you will contribute to the efficiency, capability and profitability of the business by gathering, analysing and recommending changes to processes/systems within BUs, across multiple … Internal Audit team on the development, implementation and operation of ITGCs Supporting the implementation of ISO27001 controls and perform regular control audits to monitor compliance Developing and managing a security risk framework, aligning with the enterprise risk management approach Coordinating the performance of regular business impact assessments (BIAs) and the recording of results and updates Contributing to the design … and implementation of information security process and control improvements Mentoring other members of the Information security team and promote risk management best practices across IT Supporting the development and delivery of compliance training and awareness, fostering a culture of risk awareness and accountability across the organisation Providing advice to stakeholders on IT risk and compliance topics More ❯

This position is contingent upon funding with an expected start date of December 2025 SECRET Clearance required We are seeking an Information Systems Security Specialist II; this role is focused on conducting Security Technical Implementation Guide (STIG) assessments and performing vulnerability assessments using the Assured Compliance Assessment Solution (ACAS). You will manage security authorization … packages and risk assessment documentation in eMASS, while developing and maintaining Plans of Actions and Milestones (POA&M) to remediate security vulnerabilities. As part of your responsibilities, you'll execute Risk Management Framework (RMF) Step 5 authorizations as an Information System Security Engineer (ISSE), providing critical security risk mitigation recommendations and guidance to stakeholders. On-site … only, no telework. Position Responsibilities: Conduct Security Technical Implementation Guide (STIG) assessments, utilizing SCAP benchmarks and Evaluate STIG. Perform vulnerability assessments using the Assured Compliance Assessment Solution (ACAS) tool. Manage security authorization packages and risk assessment documentation within eMASS. Develop and maintain Plans of Actions and Milestones (POA&M) to remediate security vulnerabilities. Execute Risk Management Framework More ❯

Information Systems Security Specialist vacancy in Berkshire (060DM) Are you a former military professional with a background in information security, risk management, and assurance? Your experience in secure environments, risk analysis, and stakeholder engagement makes you the perfect fit for this Information Systems Security Specialist role. This is an opportunity to continue … making an impact by protecting critical systems and ensuring robust security measures in a complex environment. 12-month contract, with a chance of extension. Key Responsibilities Conduct risk analysis for information systems, providing strategic recommendations to decision-makers. Advise senior leadership and project teams on information security best practices. Develop and implement security architectures to … safeguard critical data and infrastructure. Assess and manage information risks across projects, supply chains, and stakeholders. Stay ahead of evolving security threats, leveraging industry standards and best practices. Oversee vulnerability assessments and ensure security compliance across IT systems. Provide technical risk assessments and contribute to the professional development of information security standards. What We're More ❯

Job information: Functional Title - IT Security Specialist Department – Security Governance and Risk Management Corporate level – Associate Vice President Report to – Director of Security Location - London, onsite 2 days per week About the role: The individual will be part of the security function that is responsible for security governance, risk and assurance, to ensure … the organisations security posture is robust, compliant against the security policy, standards and controls. The position will require close collaboration with technical, operational, compliance and audit teams to create a secure and compliant technology environment. What you will be doing: Maintain security policy, standards, procedures and frameworks. Ensure alignment with security industry standards such as NIST … CSF and NIST 800-53. Act as an advisor to colleagues across the organisation on best security practice. Conduct regular risk assessments and maintain risk register in RSA Archer. Identify assess and prioritize security risk across the organisation’s information assets and environments. Understanding security gaps and provide evaluation and treatment options, consultation on remediation More ❯

Job information: Functional Title - IT Security Specialist Department – Security Governance and Risk Management Corporate level – Associate Vice President Report to – Director of Security Location - London, onsite 2 days per week About the role: The individual will be part of the security function that is responsible for security governance, risk and assurance, to ensure … the organisations security posture is robust, compliant against the security policy, standards and controls. The position will require close collaboration with technical, operational, compliance and audit teams to create a secure and compliant technology environment. What you will be doing: Maintain security policy, standards, procedures and frameworks. Ensure alignment with security industry standards such as NIST … CSF and NIST 800-53. Act as an advisor to colleagues across the organisation on best security practice. Conduct regular risk assessments and maintain risk register in RSA Archer. Identify assess and prioritize security risk across the organisation’s information assets and environments. Understanding security gaps and provide evaluation and treatment options, consultation on remediation More ❯

Position Description: This role is responsible for developing, communicating, implementing, enforcing and monitoring security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure or destruction. Activities include creating policies and standards, conducting vulnerability audits, records management and model audit rule (MAR). Position Location: This is a hybrid role working partially in-office (Lincoln … NE or Cincinnati, OH) and partially from home. What you do: Provide technical security expertise across the organization. Maintain and enhance security programs and information security tools. Develop and document security engineering standards, guides and procedures. Collaborate with Security Operations and IT teams to investigate and respond to security incidents. Participate in security reviews for system designs, third-party solutions, and configuration changes. Research and assess emerging threats, tools, and technologies to strengthen the security posture. Execute project work related to security engineering and infrastructure improvements. Support audit and compliance efforts by supplying documentation and subject matter expertise. What you bring: 3-5 years of related experience required in some More ❯

Information Security/Information Privacy SME (Contract) Location: Central London (Hybrid – 2 days onsite per week) Contract: Inside IR35 or Umbrella Engagement Duration: 6–12 months (with potential extension) Industry: Private Banking/Wealth Management Role Overview: We are seeking a highly experienced Information Security/Information Privacy Subject Matter Expert (SME) to support … a leading private bank in London. This role is focused on providing strategic and operational guidance on cybersecurity, data protection, and regulatory compliance to ensure the bank’s information assets and customer data remain secure and compliant with applicable standards (e.g., ISO 27001, GDPR, FCA requirements). Key Responsibilities: Serve as the SME for all matters related to information security and privacy. Advise on the development and maintenance of security policies, procedures, and frameworks. Review and strengthen current information security architecture and controls. Conduct risk assessments, gap analyses, and privacy impact assessments (DPIAs). Provide expert input on GDPR, UK Data Protection Act, and other relevant regulations. Partner with internal stakeholders across legal, compliance More ❯

Job Title : Information Security Assurance Specialist Contract Type: Permanent, Full Time Salary Range: £33,200-£41,500 depending on experience Location: Eastleigh Information Security Assurance Specialist: At Ageas, we are committed to protecting our customers, employees, and systems through robust information security practices. We are seeking a Information Security Assurance … and Architecture Specialist to join our growing team. This role is critical in ensuring our security architecture aligns with business goals and regulatory requirements, while also providing assurance over the effectiveness of our security controls. Reporting into the Assurance and Architecture Manager, you will be responsible for supporting and operating the day-to-day activities relating to … security, initiatives, controls and governance processes. This role is a combination of internal consultancy, change management and assurance activities to provide confidence to the business that we are meeting our security goals. You will act as the bridge between our technical teams and operational functions and are therefore required to have excellent communication skills, including the ability to More ❯

Job Title : Information Security Assurance Specialist Contract Type: Permanent, Full Time Salary Range: £33,200-£41,500 depending on experience Location: Eastleigh Information Security Assurance Specialist: At Ageas, we are committed to protecting our customers, employees, and systems through robust information security practices. We are seeking a Information Security Assurance … and Architecture Specialist to join our growing team. This role is critical in ensuring our security architecture aligns with business goals and regulatory requirements, while also providing assurance over the effectiveness of our security controls. Reporting into the Assurance and Architecture Manager, you will be responsible for supporting and operating the day-to-day activities relating to … security, initiatives, controls and governance processes. This role is a combination of internal consultancy, change management and assurance activities to provide confidence to the business that we are meeting our security goals. You will act as the bridge between our technical teams and operational functions and are therefore required to have excellent communication skills, including the ability to More ❯

Information Security Risk & Compliance Specialist About CyberArk : CyberArk (NASDAQ: CYBR ), is the global leader in Identity Security . Centered on privileged access management, CyberArk provides the most comprehensive security offering for any identity - human or machine - across business applications, distributed workforces, hybrid cloud workloads and throughout the DevOps lifecycle. The world's leading organizations trust … the Role: We are seeking a highly motivated and detail-oriented GRC Compliance Expert to join our Governance, Risk, and Compliance team. This role is pivotal in supporting customer security assessments during RFx processes, driving compliance initiatives including DORA , NIS2 , and other regulatory frameworks, and assisting with broader GRC activities across the organization. The ideal candidate is a self … located in our office in London. We ask to come to the office twice per week. Support the sales and legal teams during RFx processes by responding to customer security questionnaires, assessments, and due diligence requests. Coordinate and manage responses to customer security audits and assurance inquiries. Monitor regulatory changes and contribute to compliance initiatives such as DORA More ❯

value everybody for who they are and what they bring to the table, supporting one another as we continue to deliver for our customers. LI-KS1 Create & Maintain an information security management system (ISMS) capable of demonstrating compliance against internal security requirements and external commitments including certification and regulatory requirements. Provide subject matter expertise in the application … to any new or existing programme of work. Prepare and support internal and/or external compliance audit activities. Manage remediation of any audit (internal & External) non-conformities. Ensure security policies (on a risk-based approach) are produced, signed off by relevant stakeholders, published, and communicated. Also, ensure that policies are managed throughout their lifecycle and updated through yearly … or ad-hoc reviews. Produce relevant security standards documentation in consultation with Technical teams. Lead on providing information to Three UK Customers (B2B) regarding Three UK's security practices. Support proactive and effective oversight of technology and security risk management frameworks, methodologies, processes, assurance, remediation, and reporting activities across the company. Assist in designing, building, and More ❯

Reed Technology is working with a leading institution located in Edinburgh , seeking a Information Security Specialist to join their team on a permanent basis . This position plays a vital role in safeguarding information systems and data. You will be tasked with establishing and upholding security protocols to defend the organisation’s assets against cyber … threats, while ensuring adherence to relevant industry regulations and standards. Key responsibilities: Help implement and test security controls aligned with ISO27001, including policy development and compliance checks. Conduct business impact analyses to identify gaps in critical systems and processes. Support the team with disaster recovery and business continuity planning, ensuring backup facilities are ready. Assist with threat assessments and … help teams understand risks and mitigation strategies. Plan and carry out security audits, tracking follow-up actions. Report on risk and compliance issues within set timelines. Help coordinate third-party penetration/vulnerability testing and follow up on findings. Perform internal security testing of web apps and infrastructure. Support staff with security awareness training and track completion. More ❯

Diverse Systems Group, LLC is seeking an Information Assurance/Security Specialist to play a pivotal role in safeguarding the integrity, confidentiality, and availability of information systems and data within the Information Technology Department at Walter Reed National Military Medical Center (WRNMMC). This role involves implementing and maintaining security measures, conducting risk assessments … developing security policies and procedures, and leading incident response activities. Job Summary: Conduct specialized analysis and application of system security practices within the organization/agency to ensure the integrity, confidentiality, and availability of systems and data. Collaborate closely with the system owner and Information System Security Officer (ISSO) to provide expertise and support in various … Technology (NIST) and/or Department of Defense IA Certification and Accreditation Process standards, ensuring that all job functions align with established guidelines and best practices. Identify and assess security risks within systems and environments, providing recommendations and solutions to mitigate potential threats and vulnerabilities. Assist in the implementation and maintenance of security controls as outlined in certification More ❯

Information Security Specialist Overview Ref: 109781 Information Security Specialist/ISO 27001/GDPR Exciting opportunity to join a global business that is still growing, the environment is fast paced and interesting and they really look after their people. Role Responsibilities Responsibilities will include: Providing technical expertise relating to the implementation and operation of … technical security controls Providing technical support and ensuring understanding and investigation of information security vulnerabilities and threats Providing advice to support teams on how to remediate and reduce identified vulnerabilities Liaising with 3rd party support and product organisations Providing technical leadership on security incident response and investigation Essential skills will include: Proven experience in implementing and … managing security frameworks such as ISO 27001, NIST CSF/NIST SP 800-53, and GDPR Strong technical skills in designing, implementing, and maintaining security controls Excellent problem-solving skills with the ability to interpret complex security topics and translate them into practical, actionable insights A proactive mindset, focused on continuous improvement, team development, and aligning security More ❯

Information Security Specialist Overview Ref: (phone number removed) Information Security Specialist/ISO 27001/GDPR Exciting opportunity to join a global business that is still growing, the environment is fast paced and interesting and they really look after their people. Role Responsibilities Responsibilities will include: Providing technical expertise relating to the implementation and … operation of technical security controls Providing technical support and ensuring understanding and investigation of information security vulnerabilities and threats Providing advice to support teams on how to remediate and reduce identified vulnerabilities Liaising with 3rd party support and product organisations Providing technical leadership on security incident response and investigation Essential skills will include: Proven experience in … implementing and managing security frameworks such as ISO 27001, NIST CSF/NIST SP 800-53, and GDPR Strong technical skills in designing, implementing, and maintaining security controls Excellent problem-solving skills with the ability to interpret complex security topics and translate them into practical, actionable insights A proactive mindset, focused on continuous improvement, team development, and More ❯

Bela Recruitment is recruiting an IT Security/ISO 27001 Specialist based in Dungannon, Co.Tyrone, Northern Ireland. The Company I’ve worked with this company for over 10 years sourcing staff across all departments. They are a great company to work for and have been investing heavily in their own ISO & IT Systems for several years, hence the … need for this ISO Compliance Specialist, to ensure ISO systems and data is central to their success. Responsibilities Support the business across ISO 27001 - developing, managing and maintaining policies and paperwork. Be detail-oriented, with strong knowledge of ISO 27001 standards and a proven track record in helpling secure audits. Any ethical standards experience will also be a big … identify areas for improvements. Full job spec on receipt of cv. Requirements 2+ years ISO 27001 experience, management, auditing and certification across a range of standards. Knowledge of IT security and technical knowledge. Ideally degree educated in an IT or Technology subject, and/or ISO/Auditing qualifications. Strong analytical and problem-solving skills. Excellent communication and interpersonal More ❯

Are you passionate about cloud security and eager to make a difference in a fast-growing environment? An established law company with over 280 years of experience with setting new standards and shaping the future of law, is seeking for a skilled Cloud Security Engineer to join the team! As one of the top-tier leader in the … industry, they excel in areas that are of utmost importance to clients and businesses globally. The company is searching for a skilled Cloud Security Engineer to join the team, focused on evaluating and optimizing security configurations across Azure IaaS and GCP platforms. If you would like to learn more about this opportunity, feel free to reach out and … apply today! Responsibilities: Assess and enhance security configurations across Azure IaaS and GCP environments Provide expert recommendations aligned with industry standards and emerging security threats Administer Azure security environments, focusing on IaaS, container security (e.g., AKS), and DevOps pipelines Evaluate Terraform scripts, advising on automation processes for secure infrastructure deployment Optimize Azure Defender and other monitoring More ❯